Cybercriminal group Storm-1865 is deploying social-engineering attacks on hospitality businesses, using a method known as “ClickFix”, where victims receive fake error or system notifications. Following the attackers’ instructions, victims either visit a malicious website or download malware directly. The criminals impersonate Booking.com to prompt users to provide financial details and login credentials. The Microsoft security research team points out this tactic has enabled Storm-1865 to evade many antimalware tools.

Decrypting Linux/ESXi Akira Ransomware Files Without Paying Ransomware
A cybersecurity researcher has decrypted the Linux/ESXI variant of Akira ransomware, allowing data recovery without ransom. The method exploits a flaw in the malware’s encryption